GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,562
Composer 4,198
Erlang 31
GitHub Actions 19
Go 1,986
Maven 5,163
npm 3,702
NuGet 660
pip 3,328
Pub 11
RubyGems 883
Rust 843
Swift 36

Unreviewed advisories

All unreviewed 233,910

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

736 advisories

Filter by severity

Sort by

Least recently updated

An Insertion of Sensitive Information into Log File vulnerability in Juniper Networks Junos OS... Moderate Unreviewed

CVE-2024-39532 was published Jul 11, 2024

Insertion of Sensitive Information into Log File vulnerability in SERVIT Software Solutions.This... Moderate Unreviewed

CVE-2024-37205 was published Jul 10, 2024

Insertion of Sensitive Information into Log File vulnerability in TrustedLogin TrustedLogin... Moderate Unreviewed

CVE-2024-37270 was published Jul 10, 2024

Multiple Exposure of sensitive information to an unauthorized actor vulnerabilities [CWE-200] in... High Unreviewed

CVE-2024-27784 was published Jul 9, 2024

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The API can... Moderate Unreviewed

CVE-2024-40598 was published Jul 7, 2024

An issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. The Special... Moderate Unreviewed

CVE-2024-40596 was published Jul 7, 2024

Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355... Moderate Unreviewed

CVE-2022-25477 was published Jul 2, 2024

Under certain circumstances unnecessary user details are provided within system logs Moderate Unreviewed

CVE-2024-32757 was published Jul 2, 2024

VMware Cloud Director Object Storage Extension contains an Insertion of Sensitive Information... Moderate Unreviewed

CVE-2024-22276 was published Jun 27, 2024

IBM Security Verify Access 10.0.0 through 10.0.7.1 could allow a local user to obtain sensitive... Moderate Unreviewed

CVE-2023-30430 was published Jun 27, 2024

Bitbucket OAuth access token exposed in the build log by Bitbucket Branch Source Plugin Moderate

CVE-2024-39460 was published for org.jenkins-ci.plugins:cloudbees-bitbucket-branch-source (Maven) Jun 26, 2024

Insertion of Sensitive Information into Log File in Checkmk GmbH's Checkmk versions <2.3.0p7, <2... Low Unreviewed

CVE-2024-28830 was published Jun 26, 2024

Dell PowerProtect DD, versions prior to 8.0, LTS 7.13.1.0, LTS 7.10.1.30, LTS 7.7.5.40 contain a... Low Unreviewed

CVE-2024-29177 was published Jun 26, 2024

A vulnerability in a password management API in Brocade Fabric OS versions before v9.2.1, v9.2.0b... Moderate Unreviewed

CVE-2024-29954 was published Jun 26, 2024

An information disclosure vulnerability in Phloc Webscopes 7.0.0 allows local attackers with... Unknown Unreviewed

CVE-2024-6060 was published Jun 26, 2024

go-retryablehttp can leak basic auth credentials to log files Moderate

CVE-2024-6104 was published for github.com/hashicorp/go-retryablehttp (Go) Jun 24, 2024

Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing... Moderate Unreviewed

CVE-2022-44587 was published Jun 21, 2024

SonarQube logs sensitive information Moderate

CVE-2024-38460 was published for org.sonarsource.sonarqube:sonar-web (Maven) Jun 16, 2024

The session cookies, used for authentication, are stored in clear-text logs. An attacker can... Moderate Unreviewed

CVE-2024-27156 was published Jun 14, 2024

The sessions are stored in clear-text logs. An attacker can retrieve authentication sessions. A... Moderate Unreviewed

CVE-2024-27157 was published Jun 14, 2024

Passwords are stored in clear-text logs. An attacker can retrieve passwords. As for the affected... Moderate Unreviewed

CVE-2024-27154 was published Jun 14, 2024

A problem with the Palo Alto Networks GlobalProtect app can result in exposure of encrypted user... Moderate Unreviewed

CVE-2024-5908 was published Jun 12, 2024

CWE-532: Insertion of Sensitive Information into Log File vulnerability exists that could cause... Moderate Unreviewed

CVE-2024-5557 was published Jun 12, 2024

Insertion of Sensitive Information into Log File vulnerability in Octolize USPS Shipping for... Moderate Unreviewed

CVE-2024-32811 was published Jun 9, 2024

Under certain circumstances the Microsoft® Internet Information Server (IIS) used to host the C... High Unreviewed

CVE-2024-0912 was published Jun 6, 2024

Previous 1 2 3 4 5 … 29 30 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

736 advisories